tpws: --tlsrec

2025-12-30 19:38:08 +03:00 · 2023-10-12 12:35:06 +03:00
parent 2456aae8ad
commit 6dc413d0c9
30 changed files with 3372 additions and 3493 deletions
--- a/docs/nftables.txt
+++ b/docs/nftables.txt
@@ -1,26 +1,26 @@
-nftables test cheat sheet
-simplified rules to test nfqws and tpws
-
-
-For DNAT :
-
-# run tpws as user "tpws". its required to avoid loops.
-
-nft delete table inet ztest
-nft create table inet ztest
-nft add chain inet ztest pre "{type nat hook prerouting priority dstnat;}"
-nft add rule inet ztest pre tcp dport "{80,443}" redirect to :988
-nft add chain inet ztest out "{type nat hook output priority -100;}"
-nft add rule inet ztest out tcp dport "{80,443}" skuid != tpws redirect to :988
-
-
-For dpi desync attack :
-
-nft delete table inet ztest
-nft create table inet ztest
-nft add chain inet ztest post "{type filter hook postrouting priority mangle;}"
-nft add rule inet ztest post tcp dport "{80,443}" queue num 200 bypass
-
-
-show rules   : nft list table inet ztest
-delete table : nft delete table inet ztest
+nftables test cheat sheet
+simplified rules to test nfqws and tpws
+
+
+For DNAT :
+
+# run tpws as user "tpws". its required to avoid loops.
+
+nft delete table inet ztest
+nft create table inet ztest
+nft add chain inet ztest pre "{type nat hook prerouting priority dstnat;}"
+nft add rule inet ztest pre tcp dport "{80,443}" redirect to :988
+nft add chain inet ztest out "{type nat hook output priority -100;}"
+nft add rule inet ztest out tcp dport "{80,443}" skuid != tpws redirect to :988
+
+
+For dpi desync attack :
+
+nft delete table inet ztest
+nft create table inet ztest
+nft add chain inet ztest post "{type filter hook postrouting priority mangle;}"
+nft add rule inet ztest post tcp dport "{80,443}" queue num 200 bypass
+
+
+show rules   : nft list table inet ztest
+delete table : nft delete table inet ztest